Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

DHS to Clarify Liability Protections for Companies Sharing Cyber-threat Indicators

The Department of Homeland Security (DHS) intends to issue revised guidance that will clarify liability protections for companies sharing cyber-threat indicators among themselves, and will reissue guidance on information sharing with non-federal entities under the Cybersecurity Act of 2015. DHS intends to revise the initial guidance issued in February to reflect the industry feedback...

House Passes Cybersecurity Consortium Act

The House of Representatives passed the National Cybersecurity Preparedness Consortium Act, which will allow the Department of Homeland Security (DHS) to establish a consortium to address cybersecurity threats and incidents. The consortium would provide training to state and local first responders and officials, conduct training and simulation exercises, and help states develop...

DHS Announces Public Hearings and Requests Comments on Handling of Critical Infrastructure Information

  The Department of Homeland Security (“DHS”) announced that it will hold a series of public hearings and request comments on revising its regulations regarding the handling of protected critical-infrastructure information (“PCII”) in an automated and electronic format.  According to the notice published in the Federal Register, DHS is requesting comments on revising its rules...

FTC Reviews Security Updates Practices of Eight Mobile Device Manufacturers

The Federal Trade Commission is requiring eight mobile device manufacturers to provide the FTC with information about how they determine to issue security updates to address vulnerabilities in smartphones, tablets, and other mobile devices. The FTC plans to use these filings to study policies, procedures, and practices used to notify customers and determine whether to provide security...

NIST Issues Streamline Guidance for Public Comment

The National Institute of Standards and Technology (“NIST”) has issued a revised version of its guidance for sharing cyber-threat intelligence. The goal of this guidance is to help improve cybersecurity operations and risk management activities through information sharing practices.  NIST has removed elements not related to the core elements of the guidance, such as a discussion on...

« Older Entries Next Entries »